Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

startnow.com


  • Please log in to reply
8 replies to this topic

#1 byrnedfish

byrnedfish

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 20 July 2011 - 08:18 PM

My homepage has been hijacked in both Firefox and IE and has been reset to startnow.com. I have tried to update and run avast!, but it seems to be blocked and will not update or run and is turned off. When i try to turn it back on i get a message saying "The following components could not be started: Mail shield, IM shield, p2p shield, File system shield, web shield, script shield, behavior shield, network shield". I have also recieved various error messages when shutting down and starting up my computer.

Thank you for any help you can provide.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:39 AM

Posted 20 July 2011 - 08:43 PM

Hello and welcome..

Please click Start > Run, type inetcpl.cpl in the runbox and press enter.
Click the Connections tab and click the LAN settings option.
Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.


Reboot into Safe Mode with Networking
How to enter safe mode(XP/Vista)
Using the F8 Method
Restart your computer.
When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
Select the option for Safe Mode with Networking using the arrow keys.
Then press enter on your keyboard to boot into Safe Mode
.


>>>> Download this file and doubleclick on it to run it. Allow the information to be merged with the registry.

RKill....

Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.



Next run Superantisypware (SAS):

Download and scan with SUPERAntiSpyware Free for Home Users
  • Double-click SUPERAntiSpyware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the Scanning Control tab.
  • Under Scanner Options make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen.
  • Back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan.
  • Click "Next" to start the scan. Please be patient while it scans your computer.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes".
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.
If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.


Now reboot to Normal and run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware and save it to your desktop.
Download Link 1
Download Link 2MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Quick Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

Troubleshoot Malwarebytes' Anti-Malware

Please ask any needed questions,post logs and Let us know how the PC is running now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 byrnedfish

byrnedfish
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 20 July 2011 - 08:44 PM

Following what seems to be the normal progression of diagnostics here are the results:


Security Check

Results of screen317's Security Check version 0.99.7
Windows 7 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Enabled!
avast! Free Antivirus
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
HijackThis 2.0.2
Java™ 6 Update 26
Out of date Java installed!
Adobe Flash Player 10.3.181.26
Adobe Reader 9.4.5
Out of date Adobe Reader installed!
Mozilla Firefox (x86 en-US..) Firefox Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

Alwil Software Avast5 AvastSvc.exe
Alwil Software Avast5 AvastUI.exe
``````````End of Log````````````

==============================================================================

Mini Tool Box

MiniToolBox by Farbar
Ran by Kevin (administrator) on 20-07-2011 at 21:28:20
Windows 7 Professional Service Pack 1 (X64)

***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================



========================= IP Configuration: ================================

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Kevin-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : westell.com

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 00-21-86-38-41-E8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : westell.com
Description . . . . . . . . . . . : Intel® Wireless WiFi Link 4965AGN
Physical Address. . . . . . . . . : 00-1F-3B-C6-4A-27
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9cab:6a84:a4ed:a896%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.3.114(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, July 20, 2011 9:07:37 PM
Lease Expires . . . . . . . . . . : Thursday, July 21, 2011 9:07:41 PM
Default Gateway . . . . . . . . . : 192.168.3.1
DHCP Server . . . . . . . . . . . : 192.168.3.1
DHCPv6 IAID . . . . . . . . . . . : 218111803
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-CA-EB-F2-00-1E-68-84-E8-0F
DNS Servers . . . . . . . . . . . : 192.168.3.1
192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : clarkson.edu
Description . . . . . . . . . . . : Realtek RTL8101E Family PCI-E Fast Ethernet NIC (NDIS 6.20)
Physical Address. . . . . . . . . : 00-1E-68-84-E8-0F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.westell.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : westell.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:342a:3c37:b849:4e95(Preferred)
Link-local IPv6 Address . . . . . : fe80::342a:3c37:b849:4e95%20(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.clarkson.edu:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{15606F35-8BAD-4112-B942-D07DCA862C19}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {8195A241-7553-46AD-B26B-934CAB7F5464}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.3.1

Name: google.com
Addresses: 74.125.91.105
74.125.91.106
74.125.91.104
74.125.91.103
74.125.91.147
74.125.91.99


Pinging google.com [74.125.91.99] with 32 bytes of data:
Reply from 74.125.91.99: bytes=32 time=47ms TTL=51
Request timed out.

Ping statistics for 74.125.91.99:
Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
Minimum = 47ms, Maximum = 47ms, Average = 47ms
Server: UnKnown
Address: 192.168.3.1

Name: yahoo.com
Addresses: 209.191.122.70
67.195.160.76
69.147.125.65
72.30.2.43
98.137.149.56


Pinging yahoo.com [98.137.149.56] with 32 bytes of data:
Reply from 98.137.149.56: bytes=32 time=105ms TTL=55
Reply from 98.137.149.56: bytes=32 time=123ms TTL=55

Ping statistics for 98.137.149.56:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 105ms, Maximum = 123ms, Average = 114ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...00 21 86 38 41 e8 ......Bluetooth Device (Personal Area Network)
11...00 1f 3b c6 4a 27 ......Intel® Wireless WiFi Link 4965AGN
10...00 1e 68 84 e8 0f ......Realtek RTL8101E Family PCI-E Fast Ethernet NIC (NDIS 6.20)
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
20...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.3.1 192.168.3.114 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.3.0 255.255.255.0 On-link 192.168.3.114 281
192.168.3.114 255.255.255.255 On-link 192.168.3.114 281
192.168.3.255 255.255.255.255 On-link 192.168.3.114 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.3.114 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.3.114 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
20 58 ::/0 On-link
1 306 ::1/128 On-link
20 58 2001::/32 On-link
20 306 2001:0:4137:9e76:342a:3c37:b849:4e95/128
On-link
11 281 fe80::/64 On-link
20 306 fe80::/64 On-link
20 306 fe80::342a:3c37:b849:4e95/128
On-link
11 281 fe80::9cab:6a84:a4ed:a896/128
On-link
1 306 ff00::/8 On-link
20 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/20/2011 09:06:04 PM) (Source: MsiInstaller) (User: Kevin)Kevin
Description: Product: TrayApp -- Error 1719. The Windows Installer Service could not be accessed. This can occur if the Windows Installer is not correctly installed. Contact your support personnel for assistance.

Error: (07/20/2011 09:06:00 PM) (Source: MsiInstaller) (User: Kevin)Kevin
Description: Product: TrayApp -- Error 1904. Module C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll failed to register. HRESULT -1073741502. Contact your support personnel.

Error: (07/19/2011 05:17:57 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 5.0.0.4183 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1294

Start Time: 01cc44e811961a20

Termination Time: 300

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: 82dbf28e-b24c-11e0-ba22-0021863841e8

Error: (07/17/2011 09:13:55 PM) (Source: Windows Backup) (User: )
Description: The backup did not complete because of an error writing to the backup location G:\. The error is: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).

Error: (07/11/2011 07:02:26 PM) (Source: Windows Backup) (User: )
Description: The backup did not complete because of an error writing to the backup location G:\. The error is: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).

Error: (07/03/2011 07:04:05 PM) (Source: Windows Backup) (User: )
Description: The backup did not complete because of an error writing to the backup location G:\. The error is: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).

Error: (06/28/2011 05:46:48 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/28/2011 05:46:48 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/28/2011 05:45:20 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/28/2011 05:45:20 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.


System errors:
=============
Error: (07/20/2011 09:10:15 PM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%1053

Error: (07/20/2011 09:10:15 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (60000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.

Error: (07/20/2011 09:09:14 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (07/20/2011 09:07:46 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service failed to start due to the following error:
%%1053

Error: (07/20/2011 09:07:46 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (60000 milliseconds) while waiting for the Apple Mobile Device service to connect.

Error: (07/19/2011 05:45:11 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (07/17/2011 11:32:57 AM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (07/14/2011 06:39:16 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (07/14/2011 06:33:35 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (07/11/2011 06:52:13 PM) (Source: Service Control Manager) (User: )
Description: A timeout (60000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.


Microsoft Office Sessions:
=========================
Error: (04/11/2011 11:49:50 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 52030 seconds with 4500 seconds of active time. This session ended with a crash.

Error: (03/08/2011 11:34:27 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 134158 seconds with 12300 seconds of active time. This session ended with a crash.

Error: (02/23/2011 05:11:35 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.

Error: (04/22/2010 01:28:29 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6524.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 19529 seconds with 1800 seconds of active time. This session ended with a crash.


========================= Memory info: ===================================

Percentage of memory in use: 33%
Total physical RAM: 4094.43 MB
Available physical RAM: 2727.6 MB
Total Pagefile: 8187.05 MB
Available Pagefile: 6755.08 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.88 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:219.36 GB) (Free:44.62 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:13.52 GB) (Free:1.98 GB) NTFS
3 Drive e: (TOPO_US_EAST) (CDROM) (Total:0.58 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\KEVIN-PC

Administrator Guest Kevin


== End of log ==

=========================================================================

Malware Bytes

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Database version: 7216

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

7/20/2011 9:37:58 PM
mbam-log-2011-07-20 (21-37-58).txt

Scan type: Quick scan
Objects scanned: 173849
Time elapsed: 4 minute(s), 41 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Users\Kevin\documents\my pictures\my pictures.url (Trojan.Zlob) -> Quarantined and deleted successfully.

#4 byrnedfish

byrnedfish
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 21 July 2011 - 05:18 PM

SAS LOG

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 07/21/2011 at 09:13 AM

Application Version : 4.55.1000

Core Rules Database Version : 7437
Trace Rules Database Version: 5249

Scan type : Complete Scan
Total Scan Time : 11:13:53

Memory items scanned : 419
Memory threats detected : 0
Registry items scanned : 13626
Registry threats detected : 11
File items scanned : 981913
File threats detected : 615

PUP.StartNow Toolbar
(x86) HKLM\Software\Classes\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}
(x86) HKCR\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}
(x86) HKCR\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}
(x86) HKCR\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}#ProgID
(x86) HKCR\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}#VersionIndependentProgID
(x86) HKCR\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}#TypeLib
(x86) HKCR\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}\InprocServer32
(x86) HKCR\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}\InprocServer32#ThreadingModel
(x86) HKCR\CLSID\{6E13D095-45C3-4271-9475-F3B48227DD9F}\Programmable
C:\PROGRAM FILES (X86)\STARTNOW TOOLBAR\TOOLBAR32.DLL
(x86) HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E13D095-45C3-4271-9475-F3B48227DD9F}
(x86) HKU\S-1-5-21-1928319607-1056501743-2362068021-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13D095-45C3-4271-9475-F3B48227DD9F}
C:\Program Files (x86)\StartNow Toolbar\Resources\images\engine_images.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\engine_maps.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\engine_news.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\engine_videos.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\engine_web.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\icon_amazon.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\icon_ebay.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\icon_facebook.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\icon_games.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\icon_msn.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\icon_shopping.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\icon_travel.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\icon_twitter.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images\startnow_logo.png
C:\Program Files (x86)\StartNow Toolbar\Resources\images
C:\Program Files (x86)\StartNow Toolbar\Resources\installer.xml
C:\Program Files (x86)\StartNow Toolbar\Resources\protect\index.html
C:\Program Files (x86)\StartNow Toolbar\Resources\protect\NotIE6.css
C:\Program Files (x86)\StartNow Toolbar\Resources\protect\OnlyIE6.css
C:\Program Files (x86)\StartNow Toolbar\Resources\protect\SearchProtectIcon.png
C:\Program Files (x86)\StartNow Toolbar\Resources\protect\window.css
C:\Program Files (x86)\StartNow Toolbar\Resources\protect\window.js
C:\Program Files (x86)\StartNow Toolbar\Resources\protect
C:\Program Files (x86)\StartNow Toolbar\Resources\reactivate\index.html
C:\Program Files (x86)\StartNow Toolbar\Resources\reactivate\LeftImage.png
C:\Program Files (x86)\StartNow Toolbar\Resources\reactivate\NotIE6.css
C:\Program Files (x86)\StartNow Toolbar\Resources\reactivate\OnlyIE6.css
C:\Program Files (x86)\StartNow Toolbar\Resources\reactivate\window.css
C:\Program Files (x86)\StartNow Toolbar\Resources\reactivate\window.js
C:\Program Files (x86)\StartNow Toolbar\Resources\reactivate
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\chevron_button.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\searchbox_button_hover.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\searchbox_button_normal.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\searchbox_dropdown_button_normal.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\searchbox_input_background.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\searchbox_input_left.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\searchbox_input_middle.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\separator.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\splitter.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\toolbarbutton_ff_hover_c.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\toolbarbutton_ie_hover_c.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\toolbarbutton_ie_hover_l.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\toolbarbutton_ie_hover_r.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\toolbarbutton_ie_normal_c.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\toolbarbutton_ie_normal_l.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin\toolbarbutton_ie_normal_r.png
C:\Program Files (x86)\StartNow Toolbar\Resources\skin
C:\Program Files (x86)\StartNow Toolbar\Resources\toolbar.xml
C:\Program Files (x86)\StartNow Toolbar\Resources
C:\Program Files (x86)\StartNow Toolbar\StartNowToolbarUninstall.exe
C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe
C:\Program Files (x86)\StartNow Toolbar\uninstall.dat
C:\Program Files (x86)\StartNow Toolbar

Trojan.Agent/Gen-IExplorer[Fake]
C:\USERS\KEVIN\APPDATA\LOCAL\TEMP\RARSFX0\NIRD\IEXPLORE.EXE

Trojan.Agent/Gen-PEC
C:\USERS\KEVIN\APPDATA\LOCAL\TEMP\RARSFX0\PROCS\EXPLORER.EXE

Adware.Tracking Cookie
ads2.msads.net [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
cdn.insights.gravity.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
cdn1.static.pornhub.phncdn.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
cdn4.specificclick.net [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
core.insightexpressai.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
crackle.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
galleries.nakednewsanchors.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
ia.media-imdb.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
media.heavy.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
media.mtvnservices.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
media.noob.us [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
media.scanscout.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
media.vfmii.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
media1.break.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
media15.onsugar.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
msnbcmedia.msn.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
naiadsystems.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
s0.2mdn.net [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
secure-us.imrworldwide.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
sex.healthguru.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
sftrack.searchforce.net [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
static.eporner.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
udn.specificclick.net [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
widgets.cracked.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.amateursexpert.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.ilovetocooknaked.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.naiadsystems.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.nakednews.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.pornhub.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.porntube.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.pornyeah.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.realgfporn.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.sexyandfunny.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.sexyblend.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.sexyfunpics.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
www.watchgfporn.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
wwwstatic.megaporn.com [ C:\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\3JWKZC7B ]
C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Cookies\Low\kevin@adserv.brandaffinity[1].txt
C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Cookies\Low\kevin@pornoinside[1].txt
C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Cookies\Low\kevin@realgfporn[2].txt
C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Cookies\Low\kevin@sexyandfunny[1].txt
C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Cookies\Low\kevin@www.sexyandfunny[2].txt
.tacoda.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.edge.ru4.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.at.atwola.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adopt.euroclick.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.mediaplex.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.iacas.adbureau.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.iacas.adbureau.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.doubleclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
server.iad.liveperson.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
media.adrevolver.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.247realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.imrworldwide.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.imrworldwide.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.247realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ehg-legacy.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ehg-legacy.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ehg-legacy.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ehg-legacy.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ehg-legacy.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.nextag.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adopt.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adopt.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adopt.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adopt.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adopt.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
webstats.wthosting.co.uk [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adopt.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificmedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.trafficmp.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.trafficmp.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
data.coremetrics.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
www.acitydiscount.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.acitydiscount.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.acitydiscount.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.acitydiscount.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
server.iad.liveperson.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.clickshift.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.clickshift.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.clickshift.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ehg-kodak.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.e-2dj6wmlikidpmbo.stats.esomniture.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
sales.liveperson.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
sales.liveperson.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.overture.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.overture.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.overture.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.apmebf.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.pro-market.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.pro-market.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.pro-market.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.traveladvertising.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.traveladvertising.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media.expedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.xiti.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.bluestreak.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.hulu.112.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
statse.webtrendslive.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.paypal.112.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.stats.paypal.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.trafficmp.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.trafficmp.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
cache.trafficmp.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
cache.trafficmp.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.wachovia.112.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atwola.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.warnerbros.112.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.track.bestbuy.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.track.bestbuy.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.track.bestbuy.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
www.googleadservices.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adlegend.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adlegend.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.247realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.oasn04.247realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.questionmarket.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.questionmarket.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.kontera.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.kontera.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.edge.ru4.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.kontera.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media.adfrontiers.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ads.addynamix.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adserver.adtechus.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media.adfrontiers.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
server.iad.liveperson.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
server.iad.liveperson.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificmedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ar.atwola.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ar.atwola.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atwola.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atwola.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.tacoda.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.tacoda.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.tacoda.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.at.atwola.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.at.atwola.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
sales.liveperson.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
sales.liveperson.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.nextag.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
citi.bridgetrack.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
citi.bridgetrack.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
citi.bridgetrack.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
citi.bridgetrack.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.mediaplex.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
media.adrevolver.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
media.adrevolver.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
media.adrevolver.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.burstnet.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.tribalfusion.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.trafficmp.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.burstnet.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adrevolver.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adrevolver.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.c7.zedo.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
www.clickr.us [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
1xxx.cqcounter.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
www4.addfreestats.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
acvs.mediaonenetwork.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
bannerfarm.ace.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
broadcast.piximedia.fr [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
cdn-www.pornhub.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
cdn4.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
cds017.ph1.media.scanscout.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
d3.zedo.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
ds.serving-sys.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
googleads.g.doubleclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
ia.media-imdb.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
m1.2mdn.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
macromedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
media.ign.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
media.jambocast.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
media.mtvnservices.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
media.noob.us [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
media.podaddies.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
media.resulthost.org [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
media.scanscout.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
media.tattomedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
media.thewb.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
media1.break.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
msnbcmedia.msn.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
naiadsystems.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
objects.tremormedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
oneclicktube.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
pornoprinzen.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
s0.2mdn.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
secure-uk.imrworldwide.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
secure-us.imrworldwide.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
serving-sys.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
uclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
udn.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
video.unrulymedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
www.oneclicktube.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
www.pornhub.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
www.sexyandfunny.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
www.xxxmsncam.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
www.ziporn.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
wwwstatic.megaporn.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\7RLNNN98 ]
C:\Windows.old\Users\Kevin\AppData\Roaming\Microsoft\Windows\Cookies\kevin@ad.yieldmanager[1].txt
C:\Windows.old\Users\Kevin\AppData\Roaming\Microsoft\Windows\Cookies\kevin@doubleclick[1].txt
.doubleclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adbrite.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adbrite.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adbrite.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adbrite.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.chitika.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.kontera.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.kontera.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.kontera.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.popcapgames.122.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.atdmt.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.atdmt.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.apmebf.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.bs.serving-sys.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.serving-sys.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.serving-sys.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.serving-sys.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.serving-sys.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.serving-sys.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.serving-sys.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
stat.onestat.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
stat.onestat.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.andomedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.questionmarket.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.boyscoutsofamerica.112.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.tribalfusion.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.specificmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.mediaplex.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.mediaplex.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.myroitracking.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.clicksor.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.clicksor.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.zedo.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.zedo.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.zedo.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.zedo.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adserver.adtechus.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.xxxblackbook.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
www.xxxblackbook.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.xxxblackbook.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.xxxblackbook.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.xxxblackbook.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.xxxblackbook.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.xxxblackbook.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
dc.tremormedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.lucidmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.lucidmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.lucidmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
rotator.adjuggler.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
rotator.adjuggler.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.tacoda.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.tacoda.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.tacoda.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.tacoda.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.advertising.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.at.atwola.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.at.atwola.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.content.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.msnbc.112.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.kanoodle.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adrevolver.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adrevolver.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
media.adrevolver.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.247realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ads.medbanner.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
media.adrevolver.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.trafficmp.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.247realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ads.bridgetrack.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ads.bridgetrack.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.burstnet.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.burstnet.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.oasn04.247realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.collective-media.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adecn.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.oasn03.247realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.server.cpmstar.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.server.cpmstar.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.server.cpmstar.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.server.cpmstar.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ads.gamersmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ads.gamersmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adlegend.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adlegend.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.media6degrees.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.media6degrees.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.kontera.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.lfstmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.lfstmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.lfstmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
www.googleadservices.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.invitemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.imrworldwide.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.imrworldwide.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.eyewonder.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
wsclick.infospace.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
www.googleadservices.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.edge.ru4.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.edge.ru4.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.cbs.112.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.insightexpressai.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.revsci.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.gostats.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adserving.contextualmarketplace.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adserving.contextualmarketplace.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.azjmp.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adbrite.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.t.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.lucidmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.lucidmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.t.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.a1.interclick.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
www.burstnet.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
statse.webtrendslive.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.microsoftwindows.112.2o7.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.questionmarket.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.casalemedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ads.bridgetrack.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ads.bridgetrack.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.tacoda.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.tacoda.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
adserv.getyourglamtone.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.tradedoubler.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.tradedoubler.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.tradedoubler.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ehg-techtarget.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.hitbox.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.ad.doubleclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.adcentriconline.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.fastclick.net [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
publishers.clickbooth.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
phx09.directtrack.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
phx09.directtrack.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.directtrack.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.247realmedia.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]
.content.yieldmanager.com [ C:\Windows.old\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\vcju2mfo.default\cookies.sqlite ]

Trojan.Vundo-Variant/F
C:\WINDOWS.OLD\PROGRAM FILES (X86)\MATLAB\R2007A STUDENT\SYS\PERL\WIN32\BIN\CPUINFO.DLL
C:\WINDOWS.OLD\PROGRAM FILES (X86)\SYMANTEC ANTIVIRUS\SDSND32I.DLL
C:\WINDOWS.OLD\PROGRAM FILES (X86)\SYMANTEC ANTIVIRUS\SDSOK32I.DLL
C:\WINDOWS.OLD\PROGRAM FILES (X86)\SYMANTEC ANTIVIRUS\SDSTP32I.DLL
C:\WINDOWS.OLD\PROGRAM FILES (X86)\SYMANTEC ANTIVIRUS\SMSTR32I.DLL

Adware.CouponBar
C:\WINDOWS.OLD\USERS\KEVIN\APPDATA\LOCAL\TEMP\CPNPRT2.CID

Browser Hijacker.Favorites
C:\WINDOWS.OLD\USERS\KEVIN\FAVORITES\ANTIVIRUS SCAN.URL
=============================================================================================

MBAM LOG
Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Database version: 7216

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

7/21/2011 5:48:16 PM
mbam-log-2011-07-21 (17-48-16).txt

Scan type: Quick scan
Objects scanned: 173807
Time elapsed: 5 minute(s), 58 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:39 AM

Posted 22 July 2011 - 01:04 PM

Is the homepage still hijacked and can you updatye?

Please follow our Removal Guide here How to remove Google Redirects. You will move to the Automated Removal Instructions

If it finds something make sure Cure is selected
Next click Continue then Reboot now
A log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 byrnedfish

byrnedfish
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 22 July 2011 - 05:25 PM

My homepage is still hijacked.

I have run tdsskiller and the log is below. It did not find anything.

I also tried to update avast! again, but it still cannot be updated

2011/07/22 18:20:54.0554 3188 TDSS rootkit removing tool 2.5.11.0 Jul 11 2011 16:56:56
2011/07/22 18:20:54.0988 3188 ================================================================================
2011/07/22 18:20:54.0988 3188 SystemInfo:
2011/07/22 18:20:54.0988 3188
2011/07/22 18:20:54.0988 3188 OS Version: 6.1.7601 ServicePack: 1.0
2011/07/22 18:20:54.0988 3188 Product type: Workstation
2011/07/22 18:20:54.0988 3188 ComputerName: KEVIN-PC
2011/07/22 18:20:54.0989 3188 UserName: Kevin
2011/07/22 18:20:54.0989 3188 Windows directory: C:\Windows
2011/07/22 18:20:54.0989 3188 System windows directory: C:\Windows
2011/07/22 18:20:54.0989 3188 Running under WOW64
2011/07/22 18:20:54.0989 3188 Processor architecture: Intel x64
2011/07/22 18:20:54.0989 3188 Number of processors: 2
2011/07/22 18:20:54.0989 3188 Page size: 0x1000
2011/07/22 18:20:54.0989 3188 Boot type: Normal boot
2011/07/22 18:20:54.0989 3188 ================================================================================
2011/07/22 18:20:56.0504 3188 Initialize success
2011/07/22 18:21:09.0102 3052 ================================================================================
2011/07/22 18:21:09.0102 3052 Scan started
2011/07/22 18:21:09.0102 3052 Mode: Manual;
2011/07/22 18:21:09.0102 3052 ================================================================================
2011/07/22 18:21:10.0117 3052 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
2011/07/22 18:21:10.0240 3052 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
2011/07/22 18:21:10.0322 3052 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
2011/07/22 18:21:10.0426 3052 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
2011/07/22 18:21:10.0508 3052 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
2011/07/22 18:21:10.0577 3052 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
2011/07/22 18:21:10.0708 3052 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
2011/07/22 18:21:10.0802 3052 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
2011/07/22 18:21:10.0849 3052 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
2011/07/22 18:21:10.0877 3052 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
2011/07/22 18:21:10.0918 3052 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
2011/07/22 18:21:10.0938 3052 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
2011/07/22 18:21:11.0029 3052 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
2011/07/22 18:21:11.0084 3052 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
2011/07/22 18:21:11.0118 3052 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
2011/07/22 18:21:11.0213 3052 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
2011/07/22 18:21:11.0342 3052 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
2011/07/22 18:21:11.0376 3052 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
2011/07/22 18:21:11.0445 3052 aswFsBlk (55353cd0da287b2c3782485740965b54) C:\Windows\system32\drivers\aswFsBlk.sys
2011/07/22 18:21:11.0498 3052 aswMonFlt (b38061cdefb71361e0c7547ac60527e8) C:\Windows\system32\drivers\aswMonFlt.sys
2011/07/22 18:21:11.0529 3052 aswRdr (91e7aca95933633b2557f47cdfdb74c3) C:\Windows\system32\drivers\aswRdr.sys
2011/07/22 18:21:11.0644 3052 aswSnx (2b15499f68fad60ce69264a327e9b0f0) C:\Windows\system32\drivers\aswSnx.sys
2011/07/22 18:21:11.0706 3052 aswSP (4d939ecb19dc930056593390d1c87c43) C:\Windows\system32\drivers\aswSP.sys
2011/07/22 18:21:11.0749 3052 aswTdi (d633426c5a207ce21767569aa4946891) C:\Windows\system32\drivers\aswTdi.sys
2011/07/22 18:21:11.0823 3052 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/07/22 18:21:11.0905 3052 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
2011/07/22 18:21:12.0009 3052 ATSwpWDF (ea512f43f4a28d18b52cafe8c93984fb) C:\Windows\system32\Drivers\ATSwpWDF.sys
2011/07/22 18:21:12.0174 3052 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
2011/07/22 18:21:12.0300 3052 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
2011/07/22 18:21:12.0373 3052 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
2011/07/22 18:21:12.0474 3052 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
2011/07/22 18:21:12.0605 3052 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
2011/07/22 18:21:12.0663 3052 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2011/07/22 18:21:12.0694 3052 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2011/07/22 18:21:12.0796 3052 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
2011/07/22 18:21:12.0852 3052 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
2011/07/22 18:21:12.0875 3052 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
2011/07/22 18:21:12.0904 3052 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
2011/07/22 18:21:12.0990 3052 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
2011/07/22 18:21:13.0035 3052 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
2011/07/22 18:21:13.0107 3052 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
2011/07/22 18:21:13.0185 3052 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
2011/07/22 18:21:13.0260 3052 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
2011/07/22 18:21:13.0347 3052 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/07/22 18:21:13.0443 3052 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
2011/07/22 18:21:13.0509 3052 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
2011/07/22 18:21:13.0592 3052 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
2011/07/22 18:21:13.0738 3052 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/07/22 18:21:13.0806 3052 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
2011/07/22 18:21:13.0879 3052 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
2011/07/22 18:21:13.0942 3052 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
2011/07/22 18:21:14.0030 3052 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
2011/07/22 18:21:14.0087 3052 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
2011/07/22 18:21:14.0196 3052 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
2011/07/22 18:21:14.0333 3052 dc3d (c3cecf0919bc03a0bab3a3691f5f43ba) C:\Windows\system32\DRIVERS\dc3d.sys
2011/07/22 18:21:14.0449 3052 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
2011/07/22 18:21:14.0532 3052 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
2011/07/22 18:21:14.0583 3052 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
2011/07/22 18:21:14.0690 3052 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
2011/07/22 18:21:14.0785 3052 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\drivers\Dot4Prt.sys
2011/07/22 18:21:14.0829 3052 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
2011/07/22 18:21:14.0934 3052 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
2011/07/22 18:21:15.0048 3052 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
2011/07/22 18:21:15.0261 3052 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
2011/07/22 18:21:15.0536 3052 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
2011/07/22 18:21:15.0622 3052 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
2011/07/22 18:21:15.0723 3052 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
2011/07/22 18:21:15.0785 3052 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
2011/07/22 18:21:15.0889 3052 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
2011/07/22 18:21:15.0964 3052 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
2011/07/22 18:21:16.0000 3052 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
2011/07/22 18:21:16.0036 3052 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/07/22 18:21:16.0104 3052 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
2011/07/22 18:21:16.0484 3052 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
2011/07/22 18:21:16.0507 3052 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
2011/07/22 18:21:16.0576 3052 FTDIBUS (7442bca60ed46cc31c2f39728bbdd9ad) C:\Windows\system32\drivers\ftdibus.sys
2011/07/22 18:21:16.0628 3052 FTSER2K (121af3148cdda212cffbc4f6240699c2) C:\Windows\system32\drivers\ftser2k.sys
2011/07/22 18:21:16.0718 3052 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
2011/07/22 18:21:16.0781 3052 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
2011/07/22 18:21:16.0870 3052 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/07/22 18:21:17.0011 3052 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
2011/07/22 18:21:17.0099 3052 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
2011/07/22 18:21:17.0170 3052 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
2011/07/22 18:21:17.0208 3052 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
2011/07/22 18:21:17.0271 3052 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
2011/07/22 18:21:17.0308 3052 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
2011/07/22 18:21:17.0402 3052 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
2011/07/22 18:21:17.0552 3052 HpqRemHid (e53d53d66d61794af8160741946d0b43) C:\Windows\system32\DRIVERS\HpqRemHid.sys
2011/07/22 18:21:17.0622 3052 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
2011/07/22 18:21:17.0760 3052 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
2011/07/22 18:21:17.0855 3052 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
2011/07/22 18:21:17.0948 3052 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
2011/07/22 18:21:18.0044 3052 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
2011/07/22 18:21:18.0147 3052 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
2011/07/22 18:21:18.0317 3052 IntcAzAudAddService (04c6489a44e340574daae64a6062541c) C:\Windows\system32\drivers\RTKVHD64.sys
2011/07/22 18:21:18.0433 3052 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
2011/07/22 18:21:18.0497 3052 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
2011/07/22 18:21:18.0577 3052 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/07/22 18:21:18.0653 3052 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
2011/07/22 18:21:18.0698 3052 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
2011/07/22 18:21:18.0794 3052 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
2011/07/22 18:21:18.0834 3052 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
2011/07/22 18:21:18.0920 3052 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
2011/07/22 18:21:18.0989 3052 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
2011/07/22 18:21:19.0075 3052 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
2011/07/22 18:21:19.0171 3052 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
2011/07/22 18:21:19.0246 3052 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
2011/07/22 18:21:19.0331 3052 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
2011/07/22 18:21:19.0497 3052 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
2011/07/22 18:21:19.0575 3052 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
2011/07/22 18:21:19.0607 3052 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
2011/07/22 18:21:19.0636 3052 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2011/07/22 18:21:19.0671 3052 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2011/07/22 18:21:19.0713 3052 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
2011/07/22 18:21:19.0748 3052 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
2011/07/22 18:21:19.0786 3052 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
2011/07/22 18:21:20.0155 3052 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
2011/07/22 18:21:20.0241 3052 MODEMCSA (e38aef079cd3bcfa19f2072a214f829d) C:\Windows\system32\drivers\MODEMCSA.sys
2011/07/22 18:21:20.0317 3052 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
2011/07/22 18:21:20.0411 3052 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
2011/07/22 18:21:20.0468 3052 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
2011/07/22 18:21:20.0542 3052 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
2011/07/22 18:21:20.0597 3052 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
2011/07/22 18:21:20.0656 3052 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
2011/07/22 18:21:20.0737 3052 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
2011/07/22 18:21:20.0814 3052 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/07/22 18:21:20.0857 3052 mrxsmb10 (2086d463bd371d8a37d153897430916d) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/07/22 18:21:20.0909 3052 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/07/22 18:21:20.0983 3052 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
2011/07/22 18:21:21.0063 3052 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
2011/07/22 18:21:21.0189 3052 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
2011/07/22 18:21:21.0230 3052 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
2011/07/22 18:21:21.0306 3052 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
2011/07/22 18:21:21.0388 3052 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
2011/07/22 18:21:21.0435 3052 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/07/22 18:21:21.0473 3052 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
2011/07/22 18:21:21.0540 3052 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
2011/07/22 18:21:21.0592 3052 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
2011/07/22 18:21:21.0628 3052 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
2011/07/22 18:21:21.0670 3052 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
2011/07/22 18:21:21.0712 3052 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
2011/07/22 18:21:21.0761 3052 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
2011/07/22 18:21:21.0863 3052 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
2011/07/22 18:21:21.0961 3052 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
2011/07/22 18:21:22.0015 3052 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/07/22 18:21:22.0095 3052 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/07/22 18:21:22.0165 3052 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/07/22 18:21:22.0250 3052 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
2011/07/22 18:21:22.0336 3052 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
2011/07/22 18:21:22.0414 3052 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
2011/07/22 18:21:22.0704 3052 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
2011/07/22 18:21:22.0916 3052 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
2011/07/22 18:21:22.0967 3052 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
2011/07/22 18:21:22.0996 3052 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
2011/07/22 18:21:23.0109 3052 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
2011/07/22 18:21:23.0202 3052 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
2011/07/22 18:21:23.0649 3052 nvlddmkm (bbe872a814b00798c2d568d46c42a71b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
2011/07/22 18:21:24.0020 3052 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
2011/07/22 18:21:24.0126 3052 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
2011/07/22 18:21:24.0198 3052 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
2011/07/22 18:21:24.0294 3052 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
2011/07/22 18:21:24.0367 3052 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
2011/07/22 18:21:24.0431 3052 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
2011/07/22 18:21:24.0465 3052 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
2011/07/22 18:21:24.0536 3052 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
2011/07/22 18:21:24.0582 3052 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/07/22 18:21:24.0634 3052 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
2011/07/22 18:21:24.0694 3052 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
2011/07/22 18:21:24.0867 3052 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
2011/07/22 18:21:24.0906 3052 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
2011/07/22 18:21:25.0004 3052 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
2011/07/22 18:21:25.0081 3052 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
2011/07/22 18:21:25.0182 3052 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
2011/07/22 18:21:25.0243 3052 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
2011/07/22 18:21:25.0305 3052 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
2011/07/22 18:21:25.0385 3052 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
2011/07/22 18:21:25.0457 3052 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/07/22 18:21:25.0515 3052 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/07/22 18:21:25.0566 3052 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
2011/07/22 18:21:25.0640 3052 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
2011/07/22 18:21:25.0688 3052 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
2011/07/22 18:21:25.0719 3052 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/07/22 18:21:25.0795 3052 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
2011/07/22 18:21:25.0862 3052 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
2011/07/22 18:21:25.0912 3052 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
2011/07/22 18:21:25.0983 3052 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
2011/07/22 18:21:26.0104 3052 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
2011/07/22 18:21:26.0225 3052 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
2011/07/22 18:21:26.0346 3052 rimmptsk (9c23519fc1fd331aaaedc145ab947293) C:\Windows\system32\DRIVERS\rimmpx64.sys
2011/07/22 18:21:26.0425 3052 rimsptsk (304d71e7d2f4ce8408d058a0fffc855f) C:\Windows\system32\DRIVERS\rimspx64.sys
2011/07/22 18:21:26.0518 3052 rismxdp (2a43f9e6dbde12bc0c104785c3b3f5df) C:\Windows\system32\DRIVERS\rixdpx64.sys
2011/07/22 18:21:26.0643 3052 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
2011/07/22 18:21:26.0742 3052 RTL8167 (abcb5a38a0d85bdf69b7877e1ad1eed5) C:\Windows\system32\DRIVERS\Rt64win7.sys
2011/07/22 18:21:26.0823 3052 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
2011/07/22 18:21:26.0994 3052 SASDIFSV (b2a29cc6c019fe738c39037c6218444c) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
2011/07/22 18:21:27.0035 3052 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
2011/07/22 18:21:27.0106 3052 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
2011/07/22 18:21:27.0181 3052 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
2011/07/22 18:21:27.0299 3052 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
2011/07/22 18:21:27.0394 3052 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
2011/07/22 18:21:27.0472 3052 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
2011/07/22 18:21:27.0528 3052 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
2011/07/22 18:21:27.0612 3052 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
2011/07/22 18:21:27.0722 3052 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
2011/07/22 18:21:27.0758 3052 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
2011/07/22 18:21:27.0789 3052 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
2011/07/22 18:21:27.0830 3052 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
2011/07/22 18:21:27.0881 3052 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2011/07/22 18:21:27.0917 3052 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
2011/07/22 18:21:27.0978 3052 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
2011/07/22 18:21:28.0107 3052 smserial (22631aaf0ac9e9881ce76beac27d8030) C:\Windows\system32\DRIVERS\smserial.sys
2011/07/22 18:21:28.0224 3052 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
2011/07/22 18:21:28.0329 3052 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
2011/07/22 18:21:28.0391 3052 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
2011/07/22 18:21:28.0426 3052 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
2011/07/22 18:21:28.0484 3052 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
2011/07/22 18:21:28.0557 3052 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
2011/07/22 18:21:28.0655 3052 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
2011/07/22 18:21:28.0710 3052 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
2011/07/22 18:21:28.0749 3052 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
2011/07/22 18:21:28.0861 3052 SynTP (c52b05821884f9a0ebee38c45dbd73cd) C:\Windows\system32\DRIVERS\SynTP.sys
2011/07/22 18:21:29.0032 3052 Tcpip (92ce29d95ac9dd2d0ee9061d551ba250) C:\Windows\system32\drivers\tcpip.sys
2011/07/22 18:21:29.0206 3052 TCPIP6 (92ce29d95ac9dd2d0ee9061d551ba250) C:\Windows\system32\DRIVERS\tcpip.sys
2011/07/22 18:21:29.0299 3052 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
2011/07/22 18:21:29.0379 3052 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
2011/07/22 18:21:29.0411 3052 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
2011/07/22 18:21:29.0520 3052 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
2011/07/22 18:21:29.0597 3052 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
2011/07/22 18:21:29.0719 3052 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/07/22 18:21:29.0806 3052 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
2011/07/22 18:21:29.0924 3052 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
2011/07/22 18:21:29.0996 3052 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
2011/07/22 18:21:30.0071 3052 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
2011/07/22 18:21:30.0171 3052 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
2011/07/22 18:21:30.0271 3052 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
2011/07/22 18:21:30.0314 3052 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
2011/07/22 18:21:30.0429 3052 USBAAPL64 (54d4b48d443e7228bf64cf7cdc3118ac) C:\Windows\system32\Drivers\usbaapl64.sys
2011/07/22 18:21:30.0504 3052 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\drivers\usbccgp.sys
2011/07/22 18:21:30.0583 3052 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
2011/07/22 18:21:30.0652 3052 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
2011/07/22 18:21:30.0706 3052 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
2011/07/22 18:21:30.0748 3052 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
2011/07/22 18:21:30.0827 3052 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
2011/07/22 18:21:30.0907 3052 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
2011/07/22 18:21:30.0981 3052 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
2011/07/22 18:21:31.0053 3052 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/07/22 18:21:31.0153 3052 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
2011/07/22 18:21:31.0233 3052 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
2011/07/22 18:21:31.0330 3052 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/07/22 18:21:31.0375 3052 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
2011/07/22 18:21:31.0445 3052 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
2011/07/22 18:21:31.0510 3052 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
2011/07/22 18:21:31.0554 3052 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
2011/07/22 18:21:31.0596 3052 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
2011/07/22 18:21:31.0629 3052 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
2011/07/22 18:21:31.0718 3052 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
2011/07/22 18:21:31.0776 3052 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
2011/07/22 18:21:31.0876 3052 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
2011/07/22 18:21:31.0939 3052 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
2011/07/22 18:21:31.0992 3052 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
2011/07/22 18:21:32.0048 3052 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
2011/07/22 18:21:32.0075 3052 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
2011/07/22 18:21:32.0152 3052 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
2011/07/22 18:21:32.0206 3052 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
2011/07/22 18:21:32.0314 3052 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
2011/07/22 18:21:32.0358 3052 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
2011/07/22 18:21:32.0493 3052 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
2011/07/22 18:21:32.0578 3052 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
2011/07/22 18:21:32.0651 3052 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
2011/07/22 18:21:32.0727 3052 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
2011/07/22 18:21:32.0826 3052 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
2011/07/22 18:21:32.0872 3052 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/07/22 18:21:32.0975 3052 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
2011/07/22 18:21:32.0985 3052 Boot (0x1200) (7849db5c3c708ce814785399a16beea9) \Device\Harddisk0\DR0\Partition0
2011/07/22 18:21:33.0024 3052 Boot (0x1200) (0647373e53815a19cabcdddaedd071fa) \Device\Harddisk0\DR0\Partition1
2011/07/22 18:21:33.0030 3052 ================================================================================
2011/07/22 18:21:33.0030 3052 Scan finished
2011/07/22 18:21:33.0030 3052 ================================================================================
2011/07/22 18:21:33.0057 2916 Detected object count: 0
2011/07/22 18:21:33.0058 2916 Actual detected object count: 0
2011/07/22 18:22:05.0370 3060 Deinitialize success

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:39 AM

Posted 22 July 2011 - 07:06 PM

Have you done this?
http://windows.microsoft.com/en-US/windows7/Change-your-Internet-Explorer-9-home-page
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 byrnedfish

byrnedfish
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 24 July 2011 - 05:40 PM

I have changed my homepages back to what they used to be, and this seems to work through a restart. however, I am still unable to update Avast! (I click update and it says it starts, but never gets anywhere in the progress bar). Also, I still get this error upon restarting, which first appeared after the infection.

"Apple Application Support was not found. Apple application support is required to run iTunesHelper. Please uninstall iTunes, then install iTunes again. Error 2."

Should I follow these instructions, and what should I do about avast! ?

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:39 AM

Posted 24 July 2011 - 07:03 PM

I would un and Re install both. It is possible that the malware has corrupted something.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users